Security Directory

D

DGNB GmbH

dgnb-navigator.de

49

DGNB GmbH operates the DGNB Navigator, a specialized online platform dedicated to sustainable building products. The platform connects manufacturers providing detailed sustainability data with architects, planners, and DGNB auditors, facilitating informed product selection and integration into DGNB certification processes. The website is professionally designed, multilingual (German and English), and supported by a mature CMS (TYPO3). It hosts a large ecosystem of partners and manufacturers, reinforcing its market position as a unique sustainability-focused product database in the construction sector. Technically, the site is well-structured and mobile-optimized, though it lacks some advanced security headers and explicit privacy/cookie policies. Security posture is moderate with HTTPS usage but could be improved with better header policies and incident response information. Overall, the site is trustworthy and serves a niche but important role in sustainable construction, with room for enhanced privacy compliance and security best practices.

Z

ZIA Zentraler Immobilien Ausschuss e.V.

zia-deutschland.de

45

ZIA Zentraler Immobilien Ausschuss e.V. is a leading German real estate industry association providing advocacy, events, publications, and networking services to stakeholders in the real estate sector. The website is professionally designed using WordPress with the Divi theme and integrates modern JavaScript libraries and Matomo analytics for user tracking. The site content is rich and relevant, targeting real estate professionals and policymakers. Security posture is good with HTTPS enforced, but lacks explicit security headers and incident response information. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is trustworthy and well-positioned in its industry.

Č

ČeskýVýrobek s.r.o.

ceskyvyrobek.eu

43

ČeskýVýrobek s.r.o. operates a certification and protective trademark program called Český výrobek, which supports verified Czech manufacturers by providing a recognizable mark of Czech origin. The organization helps Czech companies grow by enhancing product trust, visibility, and marketing support. The website is built on WordPress, hosted likely on Cloudways, and employs modern technologies including Google Tag Manager and GDPR-compliant cookie management. Security posture is strong with HTTPS and consent mechanisms, though some security headers could be improved. WHOIS data is unavailable, but the website's professional presentation and trust signals support legitimacy. Overall, the site is well-structured, compliant, and serves its business purpose effectively.

S

SANANIM z.ú.

drogovaporadna.cz

50

The website drogovaporadna.cz is operated by SANANIM z.ú., a Czech non-profit organization focused on drug prevention and treatment. The site provides an anonymous online drug advisory service, educational content about various drugs, and a telephone counseling line. It targets individuals affected by drug issues, their families, and professionals seeking information. The domain has been registered since 2000, indicating a well-established presence in the Czech Republic's drug prevention sector. Technically, the website uses a custom or unknown CMS with standard web technologies including JavaScript, CSS, and HTML. It integrates Google Analytics and Google Tag Manager for user tracking. Hosting is provided by SmartWEB.CZ. The site shows basic mobile optimization and accessibility but lacks advanced SEO and modern security headers. Performance is moderate. From a security perspective, the site uses HTTPS and employs POST methods for forms, but lacks visible security headers such as CSP or HSTS. The charset is iso-8859-2 instead of UTF-8, which is outdated. No privacy or cookie policies are present, which is a compliance gap. No incident response or vulnerability disclosure information is found. The domain WHOIS data is consistent with the organization, supporting legitimacy. Overall, the site is a credible, safe, and educational resource with moderate technical and security maturity. Improvements in privacy compliance, security headers, and modern technical standards are recommended to enhance trust and protection.

L

Loopia AB

loopia.com

62

Loopia AB is a well-established Swedish hosting provider and domain registrar, operating since 1999 and positioned as the market leader in Sweden. The company offers a broad range of services including domain registration, web hosting, WordPress hosting, site building tools, email services, VPS, and reseller programs. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service information. Technically, the site uses modern frameworks like Bootstrap, integrates Google reCAPTCHA for security, and employs cookie consent mechanisms compliant with GDPR. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some HTTP security headers are not explicitly detected. The WHOIS data for the www.loopia.com domain is missing, which may indicate it is an alias or redirect, but the parent company team.blue and the brand's reputation support legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

K

KM Beta a.s.

kmbeta.cz

59

KM Beta a.s. is a well-established Czech manufacturer specializing in building materials for rough construction, including roofing tiles, masonry systems, ceiling systems, and dry mortar mixes. The company targets construction professionals and homeowners within the Czech Republic, offering a comprehensive product portfolio and regional sales support. The website reflects a professional and consistent brand image with clear navigation and rich content, supporting the company's market position as a leading local manufacturer. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, Hotjar, and a cookie consent management system, ensuring good performance, mobile optimization, and accessibility. The site uses HTTPS with strong SSL configuration, but lacks some security headers and explicit security policies, which could be improved to enhance security posture. Security-wise, the site demonstrates good practices like encrypted connections and cookie consent but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and business information appear legitimate and trustworthy. Overall, KM Beta's digital presence is strong, with good privacy compliance and user experience. Strategic improvements in security policy transparency and domain registration clarity are recommended to further strengthen trust and compliance.

Z

ZIA - Zentraler Immobilien Ausschuss

zia-innovationsradar.de

52

The ZIA-Innovationsradar website serves as a leading platform for innovative solutions in the German real estate sector, focusing on sustainability, digitalization, and investment themes. It is positioned as a key resource for industry professionals, investors, and academics interested in real estate innovation. The site presents well-structured content with a modern design, leveraging technologies like Tailwind CSS and Swiper.js to deliver a responsive and user-friendly experience. However, the technical infrastructure lacks visible advanced CMS or analytics integrations, indicating a relatively straightforward implementation. From a security perspective, the website uses HTTPS and is hosted on a known provider (kasserver.com), but lacks explicit security headers and visible privacy or cookie policies, which are critical for GDPR compliance and user trust. The absence of contact information and incident response channels further limits the security posture. WHOIS data is minimal, with no registrant details, which slightly reduces domain trustworthiness. Overall, the website is professional and relevant to its target audience but would benefit from enhanced privacy compliance, security best practices, and transparent contact information to improve trust and regulatory adherence.

S

Sympa HR

sympahr.net

66

Sympa HR is a technology company providing a human resources management platform, as evidenced by the branded login portal. The website is primarily a login interface targeting organizations and HR professionals who use their SaaS platform. The technical infrastructure is based on ASP.NET WebForms with jQuery and New Relic monitoring, indicating a moderately modern but somewhat dated technology stack. The site enforces HTTPS but lacks visible advanced security headers and privacy policies, which limits its compliance posture. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Overall, the site is functional but minimalistic, focusing on user authentication without public-facing marketing or informational content.

K

Kankaanpään kaupunki

kankaanpaa.fi

67

Kankaanpään kaupunki operates as the official municipal government website for the city of Kankaanpää, Finland. It provides comprehensive information and services related to city administration, social and health services, education, culture, environment, and public participation. The website targets residents, visitors, and stakeholders interested in municipal services and local governance. As a public sector entity, it maintains a professional and consistent online presence with clear navigation and relevant content.

S

Sanoma Media Finland

sanoma.fi

61

Sanoma Media Finland is the largest commercial media company in Finland, providing trusted journalism, engaging entertainment, and impactful marketing solutions. It operates as part of the larger Sanoma Oyj group, a European leader in consumer media and learning. The website targets a broad Finnish audience including consumers, advertisers, subscribers, job seekers, investors, and educators. The business model revolves around media publishing, subscription services, events, and educational materials. Technically, the website employs modern JavaScript frameworks, Microsoft Application Insights for monitoring, and Adobe Dynamic Tag Management for marketing and analytics. The site is well-optimized for mobile and SEO, with good performance and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a large media enterprise.

BacanaPlay is an online casino platform offering a wide range of gambling games, promotions, and a VIP club targeting adult users primarily in Finland and other European markets. The website presents a professional and modern design with good mobile optimization and SEO practices. It leverages modern web technologies including Nuxt.js, Tailwind CSS, and integrates major advertising and analytics services such as Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and service workers implemented, though explicit security headers and policies are not publicly disclosed. The absence of WHOIS registration data raises concerns about domain legitimacy and requires further verification. Privacy compliance is partial with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the site is functional and professional but would benefit from enhanced transparency and compliance documentation.

The website at f12bet.com/lander appears to be a minimal landing page likely related to gambling or betting services, as suggested by the domain name and URL path. The site contains almost no content beyond basic HTML structure and external scripts for Google Adsense and static resources. There are no privacy, cookie, or terms of service policies, nor any contact or business identity information. The domain is registered with GoDaddy.com, LLC since December 2021, which is consistent with a relatively new gambling-related business, but the lack of transparency and content reduces trust. Technically, the site uses basic JavaScript and CSS resources hosted externally, with no detected CMS or frameworks. Performance and mobile optimization are basic, and SEO and accessibility are poor due to minimal content and metadata. Security posture is weak, with no security headers detected and DNSSEC not enabled, though HTTPS is presumably in use given the URL scheme. No WAF or blocking mechanisms are present. Security-wise, the site lacks fundamental best practices such as privacy policies, contact information for incident response, and security headers. The domain registration is transparent and consistent but offers limited trust signals. The site’s content safety rating is questionable due to its gambling association, which targets adults only. Overall, the website is low quality, with poor content and security posture, and minimal compliance or business credibility. Strategic recommendations include adding comprehensive privacy and cookie policies, implementing security headers and DNSSEC, improving content quality and transparency, and establishing clear contact and incident response channels to enhance trust and compliance.

EstrelaBet is an online sports betting platform targeting adult users primarily in Brazil. The website is currently geo-restricted and blocked in certain countries, as indicated by the displayed message and Cloudflare WAF protection. The business model focuses on sports gambling services, but the site lacks publicly accessible privacy, cookie, or terms of service policies, and no contact information is provided on the landing page. Technically, the site uses Cloudflare for DNS and security, with basic HTML, CSS, and JavaScript technologies. Performance and mobile optimization are moderate to basic, with minimal SEO and accessibility features. Security posture is limited with no visible security headers or advanced protections beyond Cloudflare's WAF. Overall, the site presents a low trust profile due to minimal content and lack of compliance documentation.

Teemill is a UK-based company specializing in sustainable print on demand services, offering a platform for startups, creators, and businesses to build e-commerce websites, place custom orders, and integrate via API. The company emphasizes sustainability and circular economy principles, positioning itself as an award-winning and trusted provider in the e-commerce print on demand market. Technically, the website uses modern frameworks such as Vue.js, is hosted on AWS infrastructure, and employs Google reCAPTCHA for form security. However, it lacks visible privacy and cookie policies, and no security headers were detected, indicating room for improvement in privacy compliance and security posture. The domain registration is consistent with the business claims, with a domain age appropriate for the company's maturity. Overall, the website is professional, well-designed, and trustworthy, but should enhance privacy and security disclosures to improve compliance and user trust.

C

Choice.cz

choice.cz

56

Choice.cz is a small creative agency based in the Czech Republic offering a broad range of services including web design, architectural design, digital marketing, storytelling, and technology integration such as VR web solutions. The company targets businesses and professionals seeking multidisciplinary creative and technological services. Their website showcases a professional portfolio with team member profiles and client references, positioning them as a niche player in the creative and real estate development sectors. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Google Maps API, with a responsive design optimized for mobile devices. However, the absence of explicit privacy and cookie policies and lack of security headers indicate room for improvement in compliance and security posture. The WHOIS data is unavailable, suggesting privacy protection, which is common for small agencies but reduces transparency. Overall, the website is professional and safe, but enhancing privacy compliance and security measures would strengthen trust and risk posture.

P

Plzeňský Prazdroj, a. s.

gambrinuscup.cz

51

Gambrinus Cup is a Czech darts tournament organized by Plzeňský Prazdroj, a major brewery company. The website promotes the event, providing registration for teams and pubs, with prizes totaling 250,000 Kč. The site targets mature audiences interested in darts and pub culture in the Czech Republic. Technically, the site uses modern web technologies including Bootstrap and Leaflet.js for interactive maps, and integrates Google Tag Manager and Analytics for tracking. Security posture is solid with HTTPS and age verification, though explicit security policies and headers could be improved. Privacy compliance is supported by cookie consent and links to privacy terms. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

H

Hasíme společně

hasimeskozlem.cz

45

Hasíme společně is a Czech Republic-based non-profit community program supporting volunteer firefighter associations. The website offers a rewards system where associations collect points called Floriány through activities and beer purchases, redeemable for various prizes. The program has been operating for approximately 11 years and partners with well-known beer brands such as Gambrinus, Kozel, Radegast, and Birell. The site provides registration, login, and order forms, along with detailed information about the program and its benefits. Technically, the website uses modern web technologies including Google Tag Manager, Font Awesome, and Google Fonts, and is mobile-optimized with responsive design. Security posture is good with HTTPS enforced and secure form handling, though some security headers and explicit policies are missing. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data for the domain reduces trustworthiness and should be investigated further.

P

Plzeňský Prazdroj a.s.

jaknazavolanou.cz

61

The website jaknazavolanou.cz is a professionally designed marketing campaign platform for the Kozel beer brand, operated by Plzeňský Prazdroj a.s. It promotes a summer contest engaging consumers across multiple Czech cities with prizes including a beer-filled couch and branded merchandise. The site targets a mature audience interested in beer and social events, leveraging multimedia content and interactive forms to drive participation. Technically, the site uses modern JavaScript frameworks, Mapbox for mapping, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms, though it lacks some security headers and published incident response policies. The absence of WHOIS data is likely due to privacy protection, which is justified for this commercial domain. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

N

Na Spilce

naspilce.cz

64

Na Spilce is a hospitality business operating a restaurant in Plzeň, Czech Republic, specializing in modern Czech cuisine and traditional beer. The website presents a professional and visually appealing interface, targeting general audiences including event and wedding customers. The technical infrastructure leverages modern web technologies and Bunny CDN for content delivery, ensuring moderate performance and good mobile optimization. However, the absence of WHOIS data and registrant information limits the ability to fully verify domain legitimacy. Security posture is moderate with no visible security headers or policies, and privacy compliance is low due to missing privacy and cookie policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security measures.

W

Wuxly

wuxly.com

58

Wuxly is a Canadian-based e-commerce retailer specializing in sustainable, animal-free outerwear such as parkas, winter coats, and fleeces. Established in 2016, the company positions itself as an ethical and eco-friendly brand targeting consumers interested in high-performance, cruelty-free winter apparel. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations with marketing and analytics tools like Klaviyo, Judge.me, and Microsoft Clarity. The technical infrastructure is solid, with good mobile optimization and SEO practices, although there is room for improvement in security headers and DNS security. The security posture is good, with HTTPS enforced and domain registration protections in place, but lacks explicit security policies or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations such as GDPR.

M

Maelove Skincare

maelove.com

54

Maelove Skincare operates a well-established e-commerce platform specializing in affordable luxury skincare products. Founded in 2017, the company targets consumers seeking high-quality skincare solutions without premium markups. The website is built on Shopify using a modern Pipeline theme, integrating multiple marketing, analytics, and customer support tools to enhance user experience and business operations. The technical infrastructure is robust, leveraging reputable third-party services and cloud hosting for performance and scalability. Security posture is strong with HTTPS enforced and domain protections in place, though minor improvements such as enabling DNSSEC and publishing explicit security policies could enhance trust. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies. Overall, the business presents a credible and professional online presence with good digital maturity.

B

Brush On Block

brushonblock.com

64

Brush On Block is a specialized e-commerce retailer focused on mineral powder sunscreen and natural skincare products, emphasizing vegan-friendly and reef-safe formulations. Established in 2011, the company targets environmentally conscious consumers seeking effective sun protection with natural ingredients. Their market position is that of a niche leader with a strong brand identity and commitment to sustainability. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as loyalty programs, subscription management, and live chat support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement, domain protection statuses, and cookie consent mechanisms, though there is room for improvement in DNSSEC and formal security policies. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting a positive user experience and business credibility.

B

BAL SLOVAKIA, s.r.o.

bal.sk

55

BAL SLOVAKIA, s.r.o. operates the largest network of paint, varnish, and drugstore retail outlets in Slovakia and the Czech Republic, offering over 10,000 product types across more than 200 stores. The company provides both retail and wholesale services, including color tinting centers and customer advisory support. The website is professionally designed, localized in Slovak, and targets retail customers and wholesale clients in the region. Technically, the site employs modern JavaScript libraries, Google Analytics, and Tag Manager, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, though security headers and explicit security policies are absent. Overall, the domain registration aligns well with the business identity, indicating legitimacy and trustworthiness.

P

PragueBest s.r.o.

upsearch.cz

59

PragueBest s.r.o. is a Czech Republic-based digital agency specializing in custom web and e-commerce development, serving a broad range of B2B clients. Established in 2002, the company has a solid market position supported by numerous client references and industry awards. Their services include detailed data analysis, web design focused on user experience, and e-shop development with ERP integrations. Technically, the website employs modern JavaScript and PHP technologies, integrates Google Analytics, Microsoft Clarity, and Google reCAPTCHA v3 for security and analytics. The site is well-optimized for mobile devices and accessibility, with a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and security headers, though no explicit security or incident response policies are publicly available. The absence of WHOIS data reduces domain trust but does not detract from the professional presentation and operational maturity of the business.

WhatAreCookies.com is an educational website focused on providing detailed information about computer cookies, their usage, security implications, and browser cookie management. The site targets general internet users seeking to understand cookies and offers tools such as cookie checkers and guides on enabling, deleting, and viewing cookies. The business model appears to be advertising-supported, primarily through Google Adsense, with additional marketing tools like AddThis for social sharing. The website has been operational since at least 2002, as indicated by copyright notices, but domain registration data is missing or unavailable, which raises concerns about domain legitimacy. Technically, the website uses standard web technologies including HTML, CSS, and JavaScript, with integrations for Google Adsense, Google Analytics, and AddThis. The site is moderately optimized for mobile devices and SEO, with a clear navigation structure and good content quality. However, there is no evidence of a CMS or modern frameworks, and performance is moderate. Accessibility features are basic. From a security perspective, the site lacks visible security headers and there is no confirmation of HTTPS usage from the provided data. The cookie consent banner is implemented, requesting user consent for cookies and non-personalized advertising, which is a positive privacy compliance indicator. However, the absence of privacy policy and terms of service pages, as well as missing WHOIS registration data, reduce the overall trustworthiness and security posture. No incident response or vulnerability disclosure information is provided. Overall, the website is a useful educational resource with moderate technical maturity and basic privacy compliance. The main risk lies in the unclear domain registration status, which should be investigated further. Strategic recommendations include securing the domain registration, implementing HTTPS and security headers, publishing privacy and terms policies, and enhancing accessibility and security practices.

E

Energetická podpora

energiezamene.cz

68

The website energiezamene.cz serves as an informational platform focused on energy tariff support, specifically promoting a cost-saving tariff from the Czech Ministry of Industry and Trade to help with high energy prices. The site targets a general Czech audience seeking assistance or information about energy costs. The business model appears to be informational and supportive, likely government or public sector affiliated, though no explicit company details are provided. The website's market position is unclear due to limited business data. Technically, the site uses modern web technologies including Google and Bunny fonts, and is hosted on Bunny CDN, ensuring decent performance and mobile optimization. However, the site lacks advanced security headers and does not provide privacy or cookie policies, which are critical for compliance and user trust. Security posture is basic with no visible vulnerabilities but missing best practices. WHOIS data is unavailable, indicating privacy protection or registration issues, which reduces trustworthiness. Overall, the site is functional and informative but lacks transparency and compliance documentation.

The website at templateexpress.com/lander is a minimal landing page with almost no visible content or business information. The domain is registered since 2004 with GoDaddy.com, LLC and has domain locks enabled, indicating some level of domain security. However, the website itself lacks privacy policies, contact information, and any meaningful content, suggesting it may be a placeholder or under development. The technical infrastructure includes JavaScript and Google Adsense scripts, but no advanced frameworks or CMS are detected. Security posture is weak due to lack of HTTPS confirmation, security headers, and privacy compliance indicators. Overall, the site presents a low trust profile and minimal user engagement features.

T

Tethered

tethered.app

54

Tethered is a technology company offering a free uptime monitoring service that allows users to monitor websites, ports, and keywords with unlimited monitors and integrations. Positioned as a freemium SaaS alternative to paid uptime monitoring platforms, it targets website owners, developers, and IT professionals seeking reliable uptime notifications. The website is professionally designed with good navigation and mobile responsiveness, leveraging modern technologies such as Tailwind CSS and various third-party marketing and analytics tools. Security posture is solid with HTTPS enabled and no visible exposed sensitive data, though improvements are needed in security headers and privacy compliance mechanisms such as cookie consent. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the site demonstrates a good balance of business credibility and technical implementation, though privacy and security policies could be enhanced.

Faehrinfos.de is a small German niche informational portal providing free notifications via SMS and email about disruptions and important updates for selected ferry services in Germany. The website targets ferry users seeking timely information about ferry operations. Technically, the site uses a basic but functional tech stack including Bootstrap 3.3.7 and jQuery 1.12.4, hosted behind Cloudflare nameservers for DNS and likely CDN services. The site lacks modern security headers and explicit HTTPS confirmation in the provided data, indicating a weak security posture. Privacy compliance is minimal with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Contact information is not explicitly provided, limiting business credibility. Overall, the site is functional but basic in design and security, suitable for its niche but requiring improvements for trust and compliance.

W

Weiße Flotte GmbH

ostsee-bestattungen.de

59

Weiße Flotte GmbH operates a specialized service offering dignified sea burials from the port of Stralsund into the Prohner Wiek, targeting families and individuals seeking maritime funeral services. The company leverages over 60 years of tradition and experience, positioning itself as a trusted regional provider in the transportation and funeral service sector. The website reflects a professional and empathetic approach, emphasizing personal and discreet service. Technically, the site is built on TYPO3 CMS, hosted behind Cloudflare, and integrates Google Analytics and Tag Manager with proper consent mechanisms, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent, though some security headers and explicit policies could be enhanced. Overall, the site is well-structured, accessible, and compliant with GDPR requirements, supporting a trustworthy online presence for the business.

S

Solverde, S.A.

solverde.pt

61

Solverde, S.A. operates in the hospitality sector with a focus on casino gaming services in Portugal. The company leverages the Playtech platform for its online casino and sportsbook offerings, targeting Portuguese-speaking adult users. The website demonstrates a professional design with consistent branding and a clear focus on gambling entertainment. Technically, the site uses modern JavaScript frameworks, integrates payment services like SafeCharge, and employs Azure Application Insights for telemetry. Security measures include HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly visible. Privacy compliance is evidenced by a comprehensive cookie consent mechanism aligned with GDPR requirements. Overall, the site presents a moderate to high level of digital maturity and business credibility.

W

Winbet

winbet.com

52

Winbet.bg is a Bulgarian online gambling platform specializing in sports betting and casino games. The website targets Bulgarian-speaking users and offers a variety of betting options including live sports betting and casino games. The platform integrates third-party sports data providers such as SportRadar and uses modern web technologies including React and PWA standards to deliver a responsive user experience. The site employs Cloudflare services for DNS and CDN, enhancing performance and security. Cookie consent mechanisms are implemented to comply with GDPR requirements. However, direct contact information and detailed business registration data are not publicly available, likely due to GDPR privacy protections. Security headers and advanced security policies are not explicitly detected, suggesting room for improvement in security posture.

B

Bet9ja

bet9ja.com

62

Bet9ja is a leading Nigerian online sports betting and casino platform offering high odds on soccer, live betting, and virtual sports. The website targets adult sports bettors and casino players primarily in Nigeria. The platform's market position is strong within the Nigerian gambling industry, providing a range of betting and gaming services. Technically, the site uses standard web technologies including JavaScript and CSS, with resources served from a CDN. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility and SEO features. Security posture is basic with no visible security headers and minimal SSL configuration details. Privacy and cookie policies are not present in the analyzed content, and no contact or incident response information is provided, indicating gaps in compliance and transparency. Overall, the site is functional but would benefit from enhanced security, privacy, and user trust features.

T

Tori-Apteekki

toriapteekki.fi

58

Tori-Apteekki is a local pharmacy business based in Hämeenlinna, Finland, offering pharmaceutical retail services including medicine sales, self-care, beauty products, and home delivery. The website is built on the Wix platform, leveraging Wix Thunderbolt technology, and provides a professional and consistent user experience with clear business information and contact details. The technical infrastructure is modern and secure, with HTTPS enforced and standard security headers present. However, the website lacks explicit privacy and cookie policies, which are important for GDPR compliance. The security posture is strong with no obvious vulnerabilities detected, but improvements in privacy compliance and transparency are recommended. Overall, the website is trustworthy and well-positioned for its local market, but should enhance compliance documentation and user consent mechanisms.

Pihlajalinna Oyj is a leading Finnish healthcare service provider offering a wide range of medical and wellbeing services including primary care, occupational healthcare, specialist services, and dental care. The company targets the general public and corporate clients in Finland, providing convenient online appointment booking and customer support. The website reflects a mature digital presence with modern technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and reCAPTCHA integration, although explicit security policy and incident response information are not publicly detailed. Privacy compliance is robust with comprehensive privacy and cookie policies and GDPR adherence. Overall, the website and domain registration data indicate a trustworthy and professional healthcare business with a high level of digital maturity.

The provided content is a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content for the domain 'chromewebdata' is inaccessible or blocked. No business-related content, metadata, or contact information is available. The page primarily contains embedded JavaScript and CSS for the Chrome offline dinosaur game, which is a default error page when a website cannot be loaded. Due to the lack of accessible content, no meaningful business, security, or compliance analysis can be performed. The security posture is minimal with no HTTPS or security headers detected, and no privacy or cookie policies are present. Overall, the site is not accessible for analysis and is effectively non-functional in this state.

F

Fluidlab Oy

fluidlab.fi

45

Fluidlab Oy is a Finnish company specializing in industrial fluid analysis services, including oil, coolant, grease, and fuel testing. Established since 1998, it serves a broad industrial clientele including oil companies, research institutes, insurance firms, and large Finnish industries. The company positions itself as a trusted partner providing expert analysis to optimize maintenance, reduce costs, and prevent equipment failures. The website is professionally designed using WordPress and the Divi theme, offering bilingual content in Finnish and English, and includes detailed service descriptions and customer-oriented features such as a web portal for report access and sample collection equipment sales. Technical infrastructure is modern and stable, hosted likely by Louhi Net Oy, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though some security headers and privacy compliance elements are missing. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Promeco Group Oy

promeco.fi

68

Promeco Group Oy is a Finnish manufacturing company specializing in mechanical and electrical manufacturing services, serving key sectors such as marine, railway, energy, and industrial machinery. Established in 2010, the company positions itself as a preferred and sustainable partner for leading and emerging companies across Europe and globally. Their offerings include electrical and mechanical manufacturing, protective insulation, enclosures for railway industries, and turnkey system deliveries. The website reflects a professional and consistent brand image with clear navigation and multilingual support. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager, ActiveCampaign, and Cookiebot for analytics and compliance. Hosting is managed via Gandi SAS, with secure HTTPS and cookie consent mechanisms in place. The site demonstrates good mobile optimization, accessibility, and SEO practices. From a security perspective, the site enforces HTTPS and includes privacy and cookie policies aligned with GDPR. However, explicit security headers and a formal security policy or vulnerability disclosure page are absent. Incident reporting is facilitated through an external partner site. No critical vulnerabilities or suspicious activities were detected. Overall, the website and domain registration data are consistent and trustworthy, supporting a medium-sized manufacturing business with a solid market position. Strategic recommendations include enhancing security headers, publishing a formal security policy, and establishing a vulnerability disclosure mechanism to further strengthen security posture and trust.

B

B Media Solutions s.r.o.

bmedia.cz

44

B Media Solutions s.r.o. is a small Czech technology company specializing in custom eCommerce solutions, custom web development, and comprehensive internet marketing services. Their website is bilingual, targeting both Czech and English-speaking clients, and showcases client logos to establish credibility. The business model focuses on delivering tailored eShops and web solutions to businesses, positioning itself as a niche provider within the Czech market. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and jQuery 3.6.1. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features and modern frameworks. No CMS or hosting provider information is discernible from the content. SEO and metadata are basic but present. From a security perspective, the site lacks visible security headers and privacy-related policies such as GDPR compliance or cookie consent mechanisms. WHOIS data is missing, which raises concerns about domain registration transparency. No forms or data collection mechanisms are present on the homepage, reducing immediate data exposure risks. Overall, the security posture is moderate but could be significantly improved by implementing HTTPS, security headers, and privacy policies. The overall risk is moderate with no critical vulnerabilities detected in the visible content. Strategic recommendations include improving security configurations, adding privacy and cookie policies, and enhancing mobile and accessibility features to increase trust and compliance.

E

ELMAX STORE a.s.

elmax.cz

56

ELMAX STORE a.s. is a Czech-based company specializing in wholesale and retail sales of electrical appliances and white goods, operating since 1997. The company holds exclusive distribution rights for notable French brands such as Brandt and De Dietrich and offers a broad portfolio including their own brand Kluge. Their business model combines wholesale, retail physical stores, and e-commerce, targeting both B2B and B2C customers primarily in the Czech Republic and Slovakia. The website reflects a professional and consistent brand presence with comprehensive contact and service information. Technically, the website employs modern web technologies including Bootstrap, jQuery, and integrates multiple analytics and marketing tools such as Microsoft Clarity, Google Tag Manager, Facebook Pixel, and HubSpot Analytics. The site is mobile-optimized with a moderate performance profile. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no incident response or vulnerability disclosure information is published. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy trust scores. Despite this, the website content and business information are consistent with a legitimate medium-sized retail company. No adult or questionable content is present, and privacy compliance measures are evident. Overall, the site is professional and trustworthy but would benefit from improved transparency in domain registration and enhanced security practices. Strategic recommendations include implementing security headers, publishing incident response contacts and vulnerability disclosure policies, and verifying domain registration details to improve trust and compliance.

D

DÖRKEN

doerken.com

55

DÖRKEN is a manufacturing company specializing in coating solutions and membranes designed to protect components and buildings. The website positions the company as an expert in its field, targeting industrial and construction sectors with a B2B business model. The digital presence is professional with consistent branding and good content quality, though explicit contact and legal information are limited on the homepage. Technically, the site uses modern tools such as Cookiebot for GDPR-compliant cookie management and Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security posture is adequate with cookie consent mechanisms and no visible vulnerabilities, but lacks explicit security headers and detailed security policies. The absence of WHOIS data for the domain is a concern and warrants further investigation to confirm domain legitimacy. Overall, the website is safe, professional, and compliant with privacy regulations, but could improve transparency and security documentation.

T

Terran

terran.cz

57

Terran is a Czech company specializing in the manufacturing and distribution of high-quality concrete roofing tiles with a tradition spanning over 100 years. The company targets homeowners, builders, and roofing contractors primarily within the Czech Republic, offering a range of roofing products and accessories supported by expert advice and a wide sales network. The website reflects a mature digital presence with good content quality and user experience, including mobile optimization and clear navigation. Technically, the site employs standard web technologies and integrates common analytics and marketing tools with user consent mechanisms in place. Security posture is solid with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are absent. The lack of WHOIS data for the domain introduces some uncertainty regarding domain registration transparency, but the overall business credibility remains high based on website content and trust indicators. Strategic recommendations include enhancing transparency with domain registration data, publishing security policies, and providing direct contact information for improved trust and compliance.

L

Lex Casino

lex-casino-lv.com

59

Lex Casino is an online gambling platform targeting Latvian players, offering a wide range of casino games including slots and live dealer games. The site promotes a 150% first deposit bonus and supports multiple payment methods including cryptocurrencies. The business model focuses on online casino entertainment with a medium-sized market presence in Latvia. Technically, the site uses standard web technologies with Cloudflare DNS and is moderately optimized for mobile and SEO. However, the security posture is moderate with some best practices like domain transfer protection but lacks DNSSEC and security headers. Privacy and compliance documentation such as privacy policy and cookie policy are missing, reducing GDPR compliance confidence. WHOIS data raises concerns due to a future domain creation date and lack of registrant transparency, impacting trustworthiness. Overall, the site is functional and professional but requires improvements in compliance, transparency, and security to enhance credibility and user trust.

S

Suzana Stojković

suzanastojkovic.com

54

Suzana Stojković operates a professional creative services website specializing in branding, graphic design, web design, photography, and video/animation services. The website presents a strong market position with a portfolio of satisfied clients and testimonials, targeting businesses and individuals seeking tailored creative solutions. Technically, the site is built on WordPress using Elementor and several modern plugins, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and incident response mechanisms are recommended. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Overall, the website is professional, user-friendly, and compliant with privacy regulations, making it a credible digital presence for the business.

N

Niech Żyją!

niechzyja.pl

56

Niech Żyją! is a Polish non-profit coalition of NGOs and individuals dedicated to ending bird hunting in Poland. Established in 2012, the campaign focuses on advocacy, public awareness, and mobilizing support through petitions and educational resources. The website serves as a platform for news, campaign information, and engagement with supporters. Technically, the site is built on WordPress, leveraging common plugins and technologies such as Google Analytics and reCAPTCHA for security and analytics. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and spam protection on forms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the domain registration data aligns well with the website's mission and history, indicating a trustworthy and legitimate presence.

A

Aquatic Animal Alliance

aquaticanimalalliance.org

58

Aquatic Animal Alliance is a small US-based non-profit coalition founded in 2020 by the Aquatic Life Institute. It focuses on improving the welfare of aquatic animals exploited in the global food system through advocacy, policy, education, and research. The website is professionally designed using Squarespace, with good mobile optimization and clear navigation. It leverages partner organizations to strengthen its mission and outreach. Technically, the site uses modern web technologies and includes cookie consent mechanisms, but lacks some security headers and formal privacy and terms of service documents. The domain registration is privacy protected but consistent with the organization's profile and age. Overall, the site presents a trustworthy and mission-driven presence with room for improvement in compliance and security practices.

M

Matěj Verhaegen, Tomáš Protiva

autojidelna.cz

55

Autojídelna is a small technology company offering an open source lunch ordering application called Icanteen. The website serves as a landing page providing information about the app's features such as notifications and automatic login. The business targets users who want a streamlined lunch ordering experience, leveraging open source transparency to build trust. The domain is newly registered in late 2023, consistent with a recent product launch. Technically, the site uses modern frontend technology (VitePress) and is hosted behind Cloudflare DNS, ensuring good performance and security. The website is mobile optimized and accessible with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies are missing. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or terms of service. Contact information is limited to a company email address. Overall, the site is trustworthy and professional but could improve in privacy and security policy transparency.

L

LASSELSBERGER, s.r.o.

rako.cz

64

LASSELSBERGER, s.r.o. operates the RAKO brand, a historic and leading manufacturer of ceramic wall and floor tiles in the Czech Republic and Slovakia, with a legacy spanning nearly 140 years. The company targets construction professionals, architects, distributors, and end customers seeking high-quality ceramic tiles. Their business model focuses on manufacturing and distribution, positioning them as a key player in the regional manufacturing sector. The website reflects a professional and consistent brand image with multilingual support, catering to a broad audience.

Q

Quattro Creative Studio

wearequattro.com

52

Quattro Creative Studio is a small creative agency specializing in ethical and sustainable design solutions, offering services ranging from brand strategy to print and digital design. The company targets businesses seeking to expand their brands with a focus on sustainability and ethical passion. The website reflects a modern and professional design, built using contemporary technologies such as Nuxt.js and Tailwind CSS, hosted by OVH sas. The technical infrastructure is moderately optimized for performance and mobile responsiveness, with basic accessibility features. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website is trustworthy and professional but could improve transparency and security practices.

The website www.unplanpourtonavenir.lu serves as an informational platform for the Ordre des Architectes et des Ingénieurs-conseils (OAI) in Luxembourg, focusing on educating and informing students and professionals about the engineering consultancy profession. It provides resources on educational paths, construction projects, and job opportunities, positioning itself as a professional association resource. Technically, the site uses basic HTML, CSS, and older JavaScript libraries such as jQuery 1.7.1 and the jQuery Cycle plugin, indicating a somewhat dated technology stack. The site lacks modern CMS or frameworks and shows basic mobile and accessibility features. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is unavailable due to a malformed domain name error, limiting domain trust verification. Overall, the site is functional but requires modernization and improved security and privacy compliance to enhance trust and user experience.